Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people, just like you, are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
Solved

UC SAN for Exchange 2010

Posted on 2011-03-02
6
726 Views
Last Modified: 2012-05-11
Greetings Exchange people!

We're setting up an Exchange 2010 environment that consist of:

cas1.domain.local
cas2.domain.local
mailbox1.domain.local
mailbox2.domain.local


SAN fields I was thinking of:

webmail.domain.com
autodiscover.domain.com
cas1.domain.local
cas2.domain.local

1. Do I need to specify the FQDN to the mailbox servers in a SAN field?
2. I install the certificate on one CAS server, and export it to the other CAS. Correct?
3. Do I have to export the sertificate and install it on the mailbox servers?
4. Do I need the NETBIOS name to the CAS servers in a SAN field? If Yes, why?
5. Did I forget anything? :)
0
Comment
Question by:snusgubben
  • 3
  • 3
6 Comments
 
LVL 49

Accepted Solution

by:
Akhater earned 500 total points
ID: 35018679
1. Do I need to specify the FQDN to the mailbox servers in a SAN field?

not at all

2.. I install the certificate on one CAS server, and export it to the other CAS. Correct?
Correct just export it with private key

3. Do I have to export the sertificate and install it on the mailbox servers?
No need

4. Do I need the NETBIOS name to the CAS servers in a SAN field? If Yes, why?
Nop not needed

5. Did I forget anything? :)

Yes you need the CAS array name if both cas1 and cas2 are in the same AD site
0
 
LVL 21

Author Comment

by:snusgubben
ID: 35019009
The two cas servers is in the same site and will be in an array.

If I call the CAS array for "cas.domain.local" (I assume I should use the internal domain?), do I need SAN fields for both CAS1.domain.local and CAS2.domain.local, or is it enough to use "CAS.domain.local"?

Thanks

0
 
LVL 49

Expert Comment

by:Akhater
ID: 35019093
cas.domain.local is enough
0
Best Practices: Disaster Recovery Testing

Besides backup, any IT division should have a disaster recovery plan. You will find a few tips below relating to the development of such a plan and to what issues one should pay special attention in the course of backup planning.

 
LVL 21

Author Comment

by:snusgubben
ID: 35019427
Just to be 100% sure, it will be sufficient with:

webmail.domain.com
autodiscover.domain.com
cas.domain.local

?
0
 
LVL 49

Expert Comment

by:Akhater
ID: 35019523
yep perfect
0
 
LVL 21

Author Closing Comment

by:snusgubben
ID: 35019605
Thanks!
0

Featured Post

Free Tool: Subnet Calculator

The subnet calculator helps you design networks by taking an IP address and network mask and returning information such as network, broadcast address, and host range.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article explains in simple steps how to renew expiring Exchange Server Internal Transport Certificate.
Learn to move / copy / export exchange contacts to iPhone without using any software. Also see the issues in configuration of exchange with iPhone to migrate contacts.
In this video we show how to create an Accepted Domain in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Mail Flow >> Ac…
In this Micro Video tutorial you will learn the basics about Database Availability Groups and How to configure one using a live Exchange Server Environment. The video tutorial explains the basics of the Exchange server Database Availability grou…

791 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question